vulnerability
Huawei EulerOS: CVE-2025-9640: samba security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | Dec 11, 2025 | Dec 12, 2025 | Dec 12, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
Dec 11, 2025
Added
Dec 12, 2025
Modified
Dec 12, 2025
Description
A flaw was found in Samba, in the vfs_streams_xattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability.
Solutions
huawei-euleros-2_0_sp13-upgrade-libsmbclienthuawei-euleros-2_0_sp13-upgrade-libwbclienthuawei-euleros-2_0_sp13-upgrade-sambahuawei-euleros-2_0_sp13-upgrade-samba-clienthuawei-euleros-2_0_sp13-upgrade-samba-client-libshuawei-euleros-2_0_sp13-upgrade-samba-commonhuawei-euleros-2_0_sp13-upgrade-samba-common-toolshuawei-euleros-2_0_sp13-upgrade-samba-libshuawei-euleros-2_0_sp13-upgrade-samba-winbindhuawei-euleros-2_0_sp13-upgrade-samba-winbind-clientshuawei-euleros-2_0_sp13-upgrade-samba-winbind-modules
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.